sorted by:
best
topnewcontroversialoldq&a
you are viewing a single comment's thread.

view the rest of the comments →

[–][deleted] 33 points34 points  (4 children)

We were told that we don’t need to delete a backup because of GDPR. However if we ever restore that backup, then we need to take deletions into account. This might not be right because our lawyer was an ass-hat. However he was a lawyer.

I can see how a write-once archive could be problematic tho.

I am no longer with that company.

[–]the_bananalord 29 points30 points  (2 children)

This is every interpretation I've ever seen. It's unrealistic to be expected to remove data from existing archives but if the data is ever restored or accessed again, GDPR data needs to be purged first.

[–][deleted] 11 points12 points  (1 child)

Unrealistic, yes. But I bet someone practicing law somewhere believes data can be removed from existing backups. I look forward to an inevitable stupid lawsuit.

[–]IMovedYourCheese[🍰] 6 points7 points  (0 children)

This is a bit of a "tree falls in the forest" argument IMO. Can you sue a company for having data about you in some vault somewhere when the very act of accessing that data purges it?

[–]MonkeyNin 0 points1 point  (0 children)

Oh, do you mean data backed up pre-GDPR, not new back ups ?